timhudson / jwt-secret
Bruteforce a JWT against a list of passwords
☆73Updated 7 years ago
Alternatives and similar repositories for jwt-secret:
Users that are interested in jwt-secret are comparing it to the libraries listed below
- Let's check if your target is vulnerable for client side prototype pollution.☆64Updated last year
- A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.☆57Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- ☆150Updated last year
- Takeover AWS ips and have a working POC for Subdomain Takeover.☆90Updated last month
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆97Updated 2 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Updated 4 years ago
- GraphQL security workshop labs☆102Updated 8 months ago
- Generate wordlists for fuzzing API method names☆55Updated 4 years ago
- ☆76Updated 4 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- ☆37Updated 2 months ago
- ☆68Updated 3 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.☆67Updated 5 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆80Updated 2 years ago
- A simple way of sending messages from the CLI output to your Slack with webhook.☆117Updated last year
- Find subdomains and takeovers.☆84Updated 2 years ago
- Simple fork from degoogle original project with bug hunting purposes☆87Updated 2 years ago
- ASN reconnaissance script☆125Updated last year
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆91Updated 3 years ago
- Presentation presented at DEFCON 27 PHV☆27Updated 5 years ago
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…☆47Updated 4 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆120Updated 3 years ago
- AWS S3 open bucket poc automated script.☆57Updated 3 years ago
- Extract relative urls from a heap snapshot☆86Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆164Updated 11 months ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- This repo includes my analysis of some public reports.☆57Updated 4 years ago
- Script to test open Akamai ARL vulnerability.☆71Updated 3 years ago